The Physical Security Interoperability Association (PSIA) reported that cost-effective, automated synchronization of physical and logical identities, privileges and credentials took a major step toward becoming an industry standard recently, with PSIA’s release during ISC West of a draft proposal of its Physical-Logical Access Interoperability (PLAI) specification.
“We’re excited about the potential the PLAI specification has for reshaping physical and logical identity access for the security industry,” said David Bunzel, PSIA executive director. “With the PLAI specification, we’re making it possible to achieve access, privilege and credentials management across physical and logical identities on a plug-and-play basis. This is a game changer.”
During a demonstration at ISC West, the PLAI specification enabled an identity to be entered into Microsoft’s LDAP-compliant Active Directory, and then to automatically propagate all of that identity’s associated privileges and credentials to physical access control systems (PACS). Similarly, when an identity was removed from Active Directory, the PLAI specification automatically propagated the revocation of privileges and credentials in the physical access control systems.
“Today we were pleased to demonstrate multiple disparate systems working seamlessly through the PLAI draft specification,” said Mohammad Soleimani, chair of the PLAI Working Group and executive vice president and CTO, Kastle Systems, Falls Church, Va. “That demonstration showed how the PLAI specification fundamentally changes the way the security industry approaches identity, privilege and access management. We are opening a door to enable broad, holistic solutions that span the physical and logical realms of identity.”
The PLAI specification ensures the logical and physical access privileges associated with an employee’s role are always synchronized. That enables a company to ensure a person is physically present before permitting access to databases or applications.
Further, the specification will enable automated inter-PACS interoperability in the market for the first time, according to PSIA. Users can reduce multiple access cards because the inter-PACS interoperability automates the process of enabling an access card associated in one vendor’s PACS to be used at entry points associated with a different PACS system as long as the card readers are the same.
“With the PLAI specification, the industry is getting functionality we’ve always wanted without spending significant time and money to build custom interfaces among dozens of systems,” said Joshua Jackson, director, global product integration, Stanley Security. “This specification opens the door for manufacturers and integrators to add a great deal of value to security solutions while minimizing cost and implementation time.”
The specification is being developed by the PSIA’s PLAI Working Group, which includes Allegion, Brivo Systems, HID Global, Inovonics, Kastle Systems, Z9 Security, Mercury Systems, Microsoft Global Security, Stanley Security, Tyco Security and UTC.